* Card Processing Encryption/Decryption Scripts Help! *

**chiz** · 01-27-2004 09:38 AM

hi all,

i was wondering if anyone here has any 128 bit encryption/decryption scripts or nos of anywer i can find one capable of use for online transactions!

Im on about PGP encryption and the RSA algorithm.

I know this is an extremely hard script to develop and takes time (which I dont have). Its for a university project i'm about to undertake!

Sooo any help in finding one or where I can purchase this from would be a great help!!

I don't mind which language but asp, cgi/perl or php definately preferred!
Again any help on this would be grately appreciated!

Cheers all

**chiz** · 01-27-2004 09:55 AM

Or

Does anyone know of a shopping cart available with such encryption included with it.

Again willing to pay as it has to be secure!

Cheers

**CardboardHammer** · 01-27-2004 10:04 AM

Just get a 128bit SSL certificate (around $100 per year, IIRC) for your site and run it under https. Problem solved without writing a single line of code.

**chiz** · 01-27-2004 01:35 PM

and that will definately work??

thats what i thought originally until i was told that SSL under https is just a protocol between the server and browser/client.

and that i needed an additional 128 bit encryption/decryption script on top of this to hnadle the card details securely!

i havnt a clue as im pretty new to this!

So i can definately just buy some secure web space (SSL) and that is sufficient m8?

cheers for your help!

**CardboardHammer** · 01-27-2004 01:59 PM

https will keep the info between the client page and the webserver secure (as it currently needs to be). All data between client and server is encrypted in both directions when using SSL. Just make sure that https is being used where the critical data is being passed back and forth.

Whoever gave you that info doesn't really know what s/he is talking about... I bet it's a prof. or a univ. employee, right?

**chiz** · 01-27-2004 02:14 PM

you are spot on m8

i was on about emailing the card details to an email address though, so thats maybe what he ment?? to protect the data that way perhaps?

if that is the case m8 do you know of any scripts anywer that are secure enough to encrypt card details, then email them then decrypt them at the other end (again over a SSL).

Or is this not required?

Cheers again buddy!

**CardboardHammer** · 01-27-2004 03:23 PM

Ah, yes. E-mailing would be the issue.

Instead of e-mail, why not use a page (also under https) that requires authentication and transmit the CC info through that? You could format the data as XML and your program at the other end could log in securely, retrieve the data, parse it and do whatever it needs to with it.

**chiz** · 01-27-2004 04:05 PM

that sounds like a good idea but well beyond me at the moment

i think my best bet is to go for the e-mail encryption/decryption method!

any ideas where i could get such a script from m8?

cheers for your help - you ceratinly know your stuff!

**CardboardHammer** · 01-27-2004 04:49 PM

Well, to answer your question, I don't really know... Perhaps you could use PGP, but I don't know what's happening with it in recent times, nor have I ever used it.

If you can do ASP, I don't see how using e-mail is going to be easier for you than the sort of method I proposed... especially since you'll need an SSL certificate anyways and you don't currently have a means for sending and receiving secure e-mail...

If you fill in the details of the system you're going to build, I may be able to provide better ideas...

Thread: * Card Processing Encryption/Decryption Scripts Help! *

Thread Tools

Display

* Card Processing Encryption/Decryption Scripts Help! *

Thread Information

Users Browsing this Thread

Bookmarks

Bookmarks

Posting Permissions